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CLAIMS 

The following listing of claims replaces all prior versions, and listings, of claims in 
the application: 

Listing of Claims: 

1. (Currently amended) A method for granting access to a protected area of a storage 
device from a calling process, comprising the steps of: 

causing a calling process d e siring to gain access to th e protect e d ar e a to locat e 
locating an interface that permits acc e ss to th e protect e d ar e a ; 

causing th e calling proc e ss to use using the interface to create a created trusted 
relationship between fee a calling process and a system firmware; 

onc e th e trust e d r e lationship has b e en establish e d, allowing the calling proc e ss to 
r e trieve retrieving a directory of service areas in the protected area for the calling process 
with the created trusted relationship ; 

allowing access to accessing one or more service areas in the protected area; 

processing data contained in the one or more service areas; and 

closing the protected area when processing of data in the one or more service areas 
is complete. 

2. (Currently amended) The method recited in Claim 1 wherein the using the 
interface to create a created trusted relationship comprises [[the]] steps of: 
sending a public key to the system firmware; 

modifying the public key using a private key using the system firmware; 

causing th e calling proc e ss to validat e validating the modified key; 

causing using the system firmware to issue a public key to the calling process; 

modifying the public key using the private key using the calling process; and 

causing using the system firmware to validate the new key t-and 

if th e key is not validat e d, d e nying acc e ss to the protect e d ar e a; and 

if the key is validated, granting acc e ss to th e prot e ct e d ar e a . 
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3. (Currently amended) The method recited in Claim 1 wherein the step of allowing 
acc e ss to th e one or mor e s e rvice areas compris e s th e further comprising steps of: 

returning a handle from the system firmware to the calling process onc e th e syst e m 
firmwar e has l e arn e d to trust th e calling process ; 

modifying the handle using the calling process; 

returning the modified handle to the system firmware as part of the a retrieve 
directory request; and 

allowing th e calling process to locate the locating a desired service area using the an 
information returned by the retrieve directory request. 



4. (Currently amended) The method recited in Claim 1 wh e r e in the step of allowing 
access to the on e or more servic e ar e as compris e s th e further comprising steps of: 

returning a handle from the system firmware to the calling process onc e th e syst e m 
firmwar e has learned to trust the calling process ; 

modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of a retrieve 
directory request; and 

if th e op e n r e quest succ e eds, causing th e syst e m firmwar e to mov e moving a 
SETMAX boundary to allow access to th e a requested service area selected from the one or 
more service areas . 



5. (Currently amended) The method recited in Claim 1 wherein the step of allowing 
access to accessing the one or more service areas comprises fee steps of: 

returning a handle from the system firmware to the calling process onc e th e system 
firmware has l e arn e d to trust the calling proc e ss ; 

modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of an open service 
area with a password request; and 

if th e op e n r e qu e st succeeds, causing the syst e m firmwar e to mov e moving a 
SETMAX boundary to allow access to th e a requested service area selected from the one or 
more service areas . 
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6. (Currently amended) The method recited in Claim 1 wherein the step of using 
the interface to create a created trusted relationship further comprises moving a SETMAX 
address from an initial boundary, 

and further wherein the step of closing the protected area further comprises th e step 
of: onc e the calling process has complet e d its activiti e s in the protected ar e a, returning the 
SETMAX address to its original the initial boundary using a clos e SETMAX command. 

7-12. (Canceled) 

13. (Currently amended) A method for granting access to a protected area of a 
storage device from a calling process, comprising the steps of: 

causing a calling proc e ss desiring to gain access to the prot e cted ar e a to locat e 
locating an interface that permits acc e ss to th e protected ar e a ; 

causing the calling process to us e using the interface to create a created trusted 
r e lationship between the calling process and a system firmware; 

onc e th e trusted r e lationship has be e n e stablish e d, manipulating one or more 
PARTIES (Protected Area Run-Time Interface Extensions Services) service areas found in 
comprised within the protected area; and 

closing the protected area when the proc e ssing in manipulating the one or more 
PARTIES service areas is compl e t e completed . 

14. (Currently amended) The method recited in Claim 13 wherein the using the 
interface to create a created trusted relationship comprises the steps of: 

sending a public key to the system firmware; 

modifying the public key using a private key using the system firmware; 
causing the calling proc e ss to validat e validating the modified key; 
causing using the system firmware to issue a public key to the calling process; 
modifying the public key using the private key using the calling process; and 
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causing using the system firmware to validate the new key ; and if the k e y is not 
validated, not granting acc e ss to th e protect e d ar e a; and if th e k e y is validated, granting 
acc e ss to th e prot e ct e d ar e a . 

15. (Currently amended) The method recited in Claim 13 wherein the step of 
allowing access to the on e or mor e servic e areas comprises th e further comprising steps of: 

returning a handle from the system firmware to the calling process once th e syst e m 
firmwar e has l e arned to trust th e calling proc e ss ; 

modifying the handle using the calling process; 

returning the modifi e d handle to the system firmware as a part of the a retrieve 
directory request; and 

allowing the calling process to locate th e locating a desired service area using the an 
information returned by the retrieve directory request. 

16. (Currently amended) The method recited in Claim 13 wh e r e in the step of 
allowing access to th e on e or more s e rvice areas compris e s th e further comprising steps of: 

returning a handle from the system firmware to the calling process onc e th e system 
firmwar e has l e arned to trust th e calling proc e ss ; 

modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of a retrieve 
directory request; and 

if th e open request succ ee ds, causing th e system firmwar e to mov e moving a 
SETMAX boundary to allow access to th e a requested service area selected from the one or 
more service areas . 

17. (Currently amended) The method recited in Claim 13 wherein the step of 
allowing access to accessing the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the calling process onc e th e syst e m 
firmware has l e arned to trust the calling proc e ss ; 

modifying the handle using the calling process; 
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returning the modified handle to the system firmware as a part of an open service 
area with a password request; and 

if th e op e n r e quest succ e eds, causing th e syst e m firmwar e to mov e moving a 
SETMAX boundary to allow access to th e a requested service area selected from the one or 
more service areas . 

18. (Previously Presented) The method recited in Claim 1 3 wherein the step of 
using the interface to create a created trusted relationship further comprises: 
moving a SETMAX address from an initial boundary, 

and further wherein the step of closing the protected area further comprises th e st e p 
of: once the calling proc e ss has compl e t e d its activiti e s in th e prot e cted ar e a, returning the 
SETMAX address to its original the initial boundary using a clos e SETMAX command. 
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